package com.heima.wemedia.gateway.filter;


import com.heima.my.constant.GlobalConstant;
import com.heima.utils.common.AppJwtUtil;
import io.jsonwebtoken.Claims;
import jdk.nashorn.internal.runtime.GlobalConstants;
import org.apache.commons.lang.StringUtils;
import org.omg.PortableInterceptor.ObjectReferenceFactory;
import org.springframework.cloud.gateway.filter.GatewayFilterChain;
import org.springframework.cloud.gateway.filter.GlobalFilter;
import org.springframework.context.annotation.Configuration;
import org.springframework.core.Ordered;
import org.springframework.http.HttpHeaders;
import org.springframework.http.HttpStatus;
import org.springframework.http.server.reactive.ServerHttpRequest;
import org.springframework.http.server.reactive.ServerHttpResponse;
import org.springframework.stereotype.Component;
import org.springframework.web.server.ServerWebExchange;
import reactor.core.publisher.Mono;

import java.util.function.Consumer;
@Component
public class AuthorizeFilter implements GlobalFilter, Ordered {
    @Override
    public Mono<Void> filter(ServerWebExchange exchange, GatewayFilterChain chain) {
        ServerHttpRequest request = exchange.getRequest();
        ServerHttpResponse response = exchange.getResponse();
        //1是否为登录请求
        //1.1是- 放行
        if(request.getURI().getPath().contains(GlobalConstant.LOGIN_TAG))
        {
            return chain.filter(exchange);
        }
        //1.2不是-验证token
        //1.2.1取出token
        String token=request.getHeaders().getFirst(GlobalConstant.TOKEN_NAME);
        //1.2.2判断token是否为空
        //1.2.2.1是-拦截，并设定状态码
        if(StringUtils.isBlank(token))
        {
            response.setStatusCode(HttpStatus.UNAUTHORIZED);
            return response.setComplete();
        }
        //1.2.3验证token
        //1.2.3.1正确-放行
        try{
            //1.2.3.1.1判断是否过期
            Claims claims = AppJwtUtil.getClaimsBody(token);
            int code = AppJwtUtil.verifyToken(claims);
            if(code==1||code==2)
            {
                response.setStatusCode(HttpStatus.UNAUTHORIZED);
                return response.setComplete();
            }
            Object userId = claims.get(GlobalConstant.ID_TAG);
            ServerHttpRequest serverHttpRequest = request.mutate().headers(new Consumer<HttpHeaders>() {
                @Override
                public void accept(HttpHeaders httpHeaders) {
                    httpHeaders.add(GlobalConstant.USER_ID_TAG, userId + "");
                }
            }).build();
            exchange.mutate().request(serverHttpRequest);
            //1.2.3.2异常-拦截，并设定状态码
        }catch (Exception e){
            response.setStatusCode(HttpStatus.UNAUTHORIZED);
            return response.setComplete();
        }
        return chain.filter(exchange);

    }

    @Override
    public int getOrder() {
        return -1;
    }
}
